Description

This test case is to run connectathon test suite on a secure NFSv4 root

How to test

1. You can run both NFS server and client on the same system or use different systems. Configure the server to sync time using NTP to sync the clock for later kerberos communications.

   service ntp restart

2. Install krb5-libs if have not done so, and configure the NFS server to find out the KDC server.

   yum -y install krb5-libs

   cp /etc/krb5.conf /etc/krb5.conf.orig

   cat <<EOF >/etc/krb5.conf

   [libdefaults]

   default_realm = GREP.BE

   kdc_timesync = 1

   forwardable = true

   proxiable = true

   [realms]

   GREP.BE = {

   kdc = kdc.grep.be

   kdc = kdc-1.grep.be

   admin_server = kdc.grep.be

   }

   [login]

   krb4_convert = false

   krb4_get_tickets = false

   EOF

3. Use kadmin to create the server principal.

   <pre>

   kadmin

1. cp /etc/exports /etc/exports.orig

   echo '/nfs gss/krb5i(sync,subtree_check,rw)' > /etc/exports

   mkdir /nfs

   service nfs restart

2. Download the connectathon testsuite

   git clone git://fedorapeople.org/~steved/cthon04

3. Run the connectathon testsuite from the client.

   cd cthon04

   make

   ./runcthon --server <server IP> --serverdir /nfs

Expected Results

1. Step #1 completes without error.
2. The testsuite finishes without error; no nfs*.error files in /tmp.